Kuali Rice Development
  1. Kuali Rice Development
  2. KULRICE-2708

document operation screen auth not implemented properly

    Details

    • Type: Bug Fix Bug Fix
    • Status: Closed Closed
    • Priority: Critical Critical
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.0, KFS Release 3.0
    • Component/s: Development
    • Labels:
      None
    • Similar issues:
      KULRICE-8783Issues with Document Operation Screen
      KULRICE-7051The "Queue Document" button on the Document Operation screen may not be forwarding back to the appropriate application properly
      KULRICE-4892Document Operation screen in workflow doesn't display XML properly if it's encrypted with a different encryption key then the standalone server uses
      KULRICE-13911Document Operation screen issues Notes/ActionRequestParentId/ActionRequestTakenId
      KULRICE-8758Lookup NPEs on Document Operation Screen
      KULRICE-12353Add ability to change application document status from document operation screen
      KULRICE-2257Convert KEW Document Operation screen to use KNS
      KULRICE-5553Case/When not implemented properly
      KULRICE-8237Document Operation Screen's "Create Date" field doesn't have time component, so updating resets create date of document to 12:00
      KULRICE-4785Document Operation Screen's "Create Date" field doesn't have time component, so updating resets create date of document to 12:00
    • Rice Module:
      KEW
    • Application Requirement:
      KFS

      Description

      see linked issue

        Issue Links

          Activity

          Hide
          Eric Westfall added a comment -

          peter, for this one we need to check the permissions in the rice database and verify they are set up correctly. Essentially only 'admin' should have access to this screen via a technical administrators role. The specific permission template being used here is the "Use Screen" permission template.

          If that perm is set up correctly we need to verify it's functioning properly by checking that only admin can open that screen.

          If everything checks out ok on the rice side we need to work with the kfs team to see if there is an issue with the permission in their database.

          Show
          Eric Westfall added a comment - peter, for this one we need to check the permissions in the rice database and verify they are set up correctly. Essentially only 'admin' should have access to this screen via a technical administrators role. The specific permission template being used here is the "Use Screen" permission template. If that perm is set up correctly we need to verify it's functioning properly by checking that only admin can open that screen. If everything checks out ok on the rice side we need to work with the kfs team to see if there is an issue with the permission in their database.
          Hide
          Peter Giles (Inactive) added a comment -

          the empty checkAuthorization(...) method in DocumentOperationAction overrode / masked the functioning method in KualiAction.

          Show
          Peter Giles (Inactive) added a comment - the empty checkAuthorization(...) method in DocumentOperationAction overrode / masked the functioning method in KualiAction.
          Hide
          Ailish Byrne added a comment -

          can you explain this part...
          "
          struts-config.xml:

          • set contextRelative="true" for exceptionIncidentHandler global forward
            "
            may need to do this in other rice struts files
          Show
          Ailish Byrne added a comment - can you explain this part... " struts-config.xml: set contextRelative="true" for exceptionIncidentHandler global forward " may need to do this in other rice struts files
          Hide
          Eric Westfall added a comment -

          Bulk change of all Rice 1.0 issues to closed after public release.

          Show
          Eric Westfall added a comment - Bulk change of all Rice 1.0 issues to closed after public release.

            People

            • Assignee:
              Peter Giles (Inactive)
              Reporter:
              Ailish Byrne
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 3 hours
                3h

                  Structure Helper Panel